This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.mft File: 41820333252DF92B1DBA238F558CC8D822C768EF.mft (raw, json) Hash identifier: SJI6TKonOLugbEgMP9z23A5J+6ET2DivZRiG6BJFcTE= Subject key identifier: 33:67:46:16:E5:87:3E:9E:DB:AF:29:48:2E:1A:96:87:F0:8C:EB:A1 Authority key identifier: 41:82:03:33:25:2D:F9:2B:1D:BA:23:8F:55:8C:C8:D8:22:C7:68:EF Certificate issuer: /CN=41820333252DF92B1DBA238F558CC8D822C768EF Certificate serial: 040F600DF81EF46D1B064FB7536515374D55FDBD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41820333252DF92B1DBA238F558CC8D822C768EF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.mft Manifest number: 01DF Signing time: Fri 23 Jan 2026 18:11:16 +0000 Manifest this update: Fri 23 Jan 2026 18:06:16 +0000 Manifest next update: Mon 26 Jan 2026 22:20:16 +0000 Files and hashes: 1: 3130332e36392e36302e302f32342d3234203d3e20313530353239.roa (hash: RVo6qspo0NsN9BxZrHPSAeKSfxIe7qLdXa5VG0+wvkA=) 2: 41820333252DF92B1DBA238F558CC8D822C768EF.crl (hash: 2F2VIiWBNd8LctYoyRt1G71uz5KsyMQHxOOjkROE49E=) 3: 3130332e36392e36312e302f32342d3234203d3e20313530353239.roa (hash: uQsxGbefiEsVtpCcyhbMnpmwezO+DzoY1mF96tzo5Pg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.crl rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41820333252DF92B1DBA238F558CC8D822C768EF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 22:20:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:0f:60:0d:f8:1e:f4:6d:1b:06:4f:b7:53:65:15:37:4d:55:fd:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41820333252DF92B1DBA238F558CC8D822C768EF Validity Not Before: Jan 23 18:06:16 2026 GMT Not After : Jan 26 22:20:16 2026 GMT Subject: CN=33674616E5873E9EDBAF29482E1A9687F08CEBA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e8:c1:dd:10:c4:90:de:65:e8:65:1d:59:7b: ae:24:a4:43:ed:d5:f7:9a:1a:d9:ab:fb:8c:c0:4f: 9d:71:f0:a4:f2:95:5e:d3:24:0b:73:2e:98:67:60: 99:9f:9f:e0:9d:38:6d:94:e5:45:a7:c5:c4:5d:67: 7d:fe:9e:d4:a2:13:a2:fc:96:d2:2f:19:a2:40:a1: 81:fd:c7:98:df:68:5d:90:f8:5c:54:5e:0c:80:85: 48:75:5d:3e:c8:0c:be:6c:ae:5e:f2:ce:55:6c:c2: 46:09:80:01:1b:fd:b2:86:32:60:50:6a:c9:2b:64: e6:10:30:3d:09:69:47:28:f5:b8:31:65:d4:e7:0e: 35:fa:56:52:12:f4:37:aa:ac:b8:8b:ad:dc:17:32: 05:45:a1:14:00:99:9d:8c:20:da:b7:34:84:6a:79: d7:cb:6e:2d:57:ee:34:86:8a:a2:5b:1e:5d:5e:30: ea:ee:70:1c:af:78:9f:ae:bd:7b:4a:21:8c:d2:29: a7:67:67:e4:e0:e6:bd:78:fe:6b:3d:53:fa:03:63: e5:72:73:7f:5d:6f:aa:5a:98:50:1b:11:52:1f:6b: 67:11:ef:ae:8c:f6:46:e1:3a:c2:10:43:f8:f6:5f: 94:41:37:5c:8e:06:f7:90:a4:63:8f:1e:9c:6e:37: f1:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:67:46:16:E5:87:3E:9E:DB:AF:29:48:2E:1A:96:87:F0:8C:EB:A1 X509v3 Authority Key Identifier: keyid:41:82:03:33:25:2D:F9:2B:1D:BA:23:8F:55:8C:C8:D8:22:C7:68:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41820333252DF92B1DBA238F558CC8D822C768EF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:be:91:3d:3a:5b:80:4f:de:51:50:3a:74:f8:04:a2:04:4a: 69:05:6c:12:e7:f8:91:54:c9:7a:eb:de:88:bf:d6:5e:fd:9d: ac:c2:ac:62:60:04:a2:7b:57:b0:b4:70:09:55:6e:bb:bb:a1: fd:d2:30:26:c6:1f:04:c6:40:e6:66:90:ce:6d:bb:86:6f:dc: a4:7f:ff:5e:73:f3:d5:e4:64:2b:ef:7e:36:ca:b1:35:33:40: 3f:48:e1:dc:b4:f5:62:ce:3d:1c:9b:a8:1a:17:31:75:ef:62: 2d:94:28:8d:1c:fa:06:67:c7:50:1a:c9:62:17:f0:ab:d6:3c: ff:d3:9f:26:fd:17:9e:c2:ba:9b:1e:eb:4d:1f:67:f6:76:ed: 05:7c:65:c6:90:a1:8a:1e:29:a3:1c:24:7a:b8:3f:af:74:c2: cb:97:2a:0a:ab:f1:53:95:4e:5d:5a:2f:66:2e:3b:1b:c5:0a: 32:70:34:99:0a:cb:96:99:fb:0f:7e:80:27:0e:1f:27:9f:38: 5c:4a:fa:e6:0f:21:2e:d0:f3:e6:4d:bb:e4:6a:8c:06:68:db: c8:8c:ba:43:ce:1d:c9:5d:b8:f4:01:6c:f6:64:82:b2:f0:f9: 2d:32:c8:5a:ec:42:0d:bb:74:9b:b8:fd:7c:54:57:ad:40:bb: e3:00:db:59 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBA9gDfge9G0bBk+3U2UVN01V/b0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDE4MjAzMzMyNTJERjkyQjFEQkEyMzhGNTU4Q0M4RDgy MkM3NjhFRjAeFw0yNjAxMjMxODA2MTZaFw0yNjAxMjYyMjIwMTZaMDMxMTAvBgNV BAMTKDMzNjc0NjE2RTU4NzNFOUVEQkFGMjk0ODJFMUE5Njg3RjA4Q0VCQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ6MHdEMSQ3mXoZR1Ze64kpEPt 1feaGtmr+4zAT51x8KTylV7TJAtzLphnYJmfn+CdOG2U5UWnxcRdZ33+ntSiE6L8 ltIvGaJAoYH9x5jfaF2Q+FxUXgyAhUh1XT7IDL5srl7yzlVswkYJgAEb/bKGMmBQ askrZOYQMD0JaUco9bgxZdTnDjX6VlIS9DeqrLiLrdwXMgVFoRQAmZ2MINq3NIRq edfLbi1X7jSGiqJbHl1eMOrucByveJ+uvXtKIYzSKadnZ+Tg5r14/ms9U/oDY+Vy c39db6pamFAbEVIfa2cR766M9kbhOsIQQ/j2X5RBN1yOBveQpGOPHpxuN/HTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUM2dGFuWHPp7brylILhqWh/CM66EwHwYDVR0j BBgwFoAUQYIDMyUt+SsduiOPVYzI2CLHaO8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NTk3MWFlOS01Y2RkLTRkNDEtYjYyYS01YzI4NGFhODA5OGUvMC80MTgyMDMzMzI1 MkRGOTJCMURCQTIzOEY1NThDQzhEODIyQzc2OEVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDE4MjAzMzMyNTJERjkyQjFEQkEyMzhGNTU4Q0M4RDgyMkM3 NjhFRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODU5NzFhZTktNWNkZC00ZDQxLWI2 MmEtNWMyODRhYTgwOThlLzAvNDE4MjAzMzMyNTJERjkyQjFEQkEyMzhGNTU4Q0M4 RDgyMkM3NjhFRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADa+kT06W4BP3lFQOnT4BKIESmkFbBLn+JFU yXrr3oi/1l79nazCrGJgBKJ7V7C0cAlVbru7of3SMCbGHwTGQOZmkM5tu4Zv3KR/ /15z89XkZCvvfjbKsTUzQD9I4dy09WLOPRybqBoXMXXvYi2UKI0c+gZnx1AayWIX 8KvWPP/Tnyb9F57Cupse600fZ/Z27QV8ZcaQoYoeKaMcJHq4P690wsuXKgqr8VOV Tl1aL2YuOxvFCjJwNJkKy5aZ+w9+gCcOHyefOFxK+uYPIS7Q8+ZNu+RqjAZo28iM ukPOHclduPQBbPZkgrLw+S0yyFrsQg27dJu4/XxUV61Au+MA21k= -----END CERTIFICATE-----Generated at Sun Jan 25 18:57:21 2026 by rpki-client